Skip to main content
cPanel Technical Support has been heavily impacted by hurricane Beryl and our ability to respond to tickets has been hindered as a result. We appreciate your understanding and patience as we address these delays.

PCI Failing: vulnerable BIND version: 9.8.2rc1

Comments

3 comments

  • cPanelMichael
    Hello, Bind is provided upstream by CentOS, and isn't handled through the cPanel software. You may want to contact them again to have them explain why the backported patches offered by CentOS are not sufficient. You can find a similar thread here: ISC BIND vulnerabilities are now public (CVE-2016-1285, CVE-2016-1286, CVE-2016-2088) Thank you.
    0
  • ehask71
    Yeah I provided changelog showing it patched this year and a snippet from redhat saying they don't plan on fixing it as they felt it didn't apply ...... They rejected it. It's the only thing stopping us
    0
  • cPanelMichael
    Hello, I recommend reaching out to their support team again for a second opinion and asking clarification on the specific reason they are not accepting the backported patches. Thank you.
    0

Please sign in to leave a comment.